Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa
File: 323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa (raw, json)
Hash identifier: PWcu8n1GQVYIbIpIIeTmS8WPhGjRtUMxtKVHKNkmcLA=
Subject key identifier: 24:3B:C2:52:99:82:7B:A4:82:8E:A3:A3:9A:C8:DB:40:8A:5E:07:ED
Certificate issuer: /CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Certificate serial: 3AA1462C0F3D1F96D7E690525575AC0EB57568BB
Authority key identifier: 4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa
Signing time: Fri 09 Aug 2024 11:37:09 +0000
ROA not before: Fri 09 Aug 2024 11:32:09 +0000
ROA not after: Fri 08 Aug 2025 11:37:09 +0000
asID: 153087
IP address blocks: 2404:97c0:162::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:a1:46:2c:0f:3d:1f:96:d7:e6:90:52:55:75:ac:0e:b5:75:68:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4DF3DB3DA21D0022202130736E4CCB048C1D5158
Validity
Not Before: Aug 9 11:32:09 2024 GMT
Not After : Aug 8 11:37:09 2025 GMT
Subject: CN=243BC25299827BA4828EA3A39AC8DB408A5E07ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ad:5f:8e:96:f1:df:64:9d:5a:c0:33:fe:54:
9f:4a:c0:9c:4f:da:4a:97:2c:4b:0e:74:18:b5:00:
1e:9f:98:ee:38:9a:b3:2c:60:46:a5:ae:a6:54:50:
7d:05:8d:d3:21:73:ad:c1:a2:b5:a5:e5:ba:4d:b4:
bd:32:41:4b:fd:9e:5c:1c:91:f1:9c:85:3b:6c:03:
7d:2b:0f:cc:ff:c9:11:6c:cf:4d:61:29:53:32:80:
6e:14:08:59:01:c5:1b:15:74:f8:dc:97:7f:31:76:
b6:14:3b:a6:13:09:c3:22:84:58:ce:bc:4f:16:25:
f5:62:7b:fb:1b:83:49:41:41:18:23:20:be:56:8f:
47:b5:e1:94:69:2d:69:09:da:18:65:f5:57:99:61:
67:a5:5e:5a:b3:fc:75:3a:c6:a7:ab:1e:5e:7c:8c:
5d:87:eb:80:aa:f2:ce:1f:d8:c8:e1:c8:b7:d3:89:
d6:c5:df:80:7f:56:85:b6:1d:5b:bd:2e:0d:03:7a:
c3:96:b8:e3:d2:60:ad:2b:6b:80:1b:d4:15:0e:c5:
a0:b5:49:3b:59:f6:7e:e0:7a:1c:fd:56:31:95:a1:
d5:72:53:15:e9:79:91:5c:08:5e:89:ec:ba:c2:bc:
8a:68:c5:c9:70:19:b4:a0:1f:c6:80:bd:c9:ea:1b:
e7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3B:C2:52:99:82:7B:A4:82:8E:A3:A3:9A:C8:DB:40:8A:5E:07:ED
X509v3 Authority Key Identifier:
keyid:4D:F3:DB:3D:A2:1D:00:22:20:21:30:73:6E:4C:CB:04:8C:1D:51:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/4DF3DB3DA21D0022202130736E4CCB048C1D5158.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DF3DB3DA21D0022202130736E4CCB048C1D5158.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ded5811-be50-4caa-9f96-63d3720311de/1/323430343a393763303a3136323a3a2f34382d3438203d3e20313533303837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:97c0:162::/48
Signature Algorithm: sha256WithRSAEncryption
7f:f5:9b:8d:36:7f:cb:3d:9c:0b:f1:2a:41:7f:b2:19:68:84:
fe:0c:38:bb:78:c4:4f:c9:c3:ac:9c:cc:c7:8e:64:6f:e7:ab:
cd:cf:72:46:09:e0:52:9e:a9:5a:dc:7f:89:f8:50:13:95:31:
13:cb:26:a2:eb:06:50:f1:53:35:1b:5c:69:4d:11:f5:fa:9b:
b2:1f:bf:2c:b5:fe:e1:4d:e0:d1:dd:96:dc:43:f6:49:1e:31:
93:0c:b8:cd:b7:50:b4:77:c9:01:1f:8b:0c:a2:d3:77:1c:72:
4f:c1:b2:90:3e:60:ce:0e:fc:fd:07:2c:de:6c:4d:da:58:3e:
9e:89:05:61:03:17:e0:63:f2:46:76:af:20:ad:b9:26:ff:17:
12:36:0d:83:81:42:a8:89:4b:d9:74:b3:b2:38:bf:4d:bf:54:
af:86:cc:29:d0:13:51:cf:b6:8b:98:54:07:cd:36:f1:05:3a:
f4:55:dc:d1:98:50:84:d8:a0:ce:27:cf:7e:0e:1b:c3:1c:90:
df:75:05:d7:a6:11:9b:ae:40:4d:7c:4b:de:90:c2:c6:65:b1:
0b:ea:36:e5:a2:c3:5a:08:ab:98:28:6d:01:79:ed:e6:c8:1c:
34:e5:a8:23:4d:d1:6b:65:de:f7:a9:dd:f2:fc:fd:e9:7e:5d:
0f:ef:32:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:01:46 2025 by rpki-client